1 files changed, 215 insertions, 0 deletions
diff --git a/src/lib/libcrypto/man/BF_set_key.3 b/src/lib/libcrypto/man/BF_set_key.3
new file mode 100644
index 0000000000..53ff53896c
--- /dev/null
+++ b/src/lib/libcrypto/man/BF_set_key.3
@@ -0,0 +1,215 @@
+.Dd July 17, 2014
+.Dt BF_SET_KEY 3
+.Os
+.Sh NAME
+.Nm BF_set_key ,
+.Nm BF_encrypt ,
+.Nm BF_decrypt ,
+.Nm BF_ecb_encrypt ,
+.Nm BF_cbc_encrypt ,
+.Nm BF_cfb64_encrypt ,
+.Nm BF_ofb64_encrypt ,
+.Nm BF_options
+.Nd Blowfish encryption
+.Sh SYNOPSIS
+.In openssl/blowfish.h
+.Ft void
+.Fo BF_set_key
+.Fa "BF_KEY *key"
+.Fa "int len"
+.Fa "const unsigned char *data"
+.Fc
+.Ft void
+.Fo BF_ecb_encrypt
+.Fa "const unsigned char *in"
+.Fa "unsigned char *out"
+.Fa "BF_KEY *key"
+.Fa "int enc"
+.Fc
+.Ft void
+.Fo BF_cbc_encrypt
+.Fa "const unsigned char *in"
+.Fa "unsigned char *out"
+.Fa "long length"
+.Fa "BF_KEY *schedule"
+.Fa "unsigned char *ivec"
+.Fa "int enc"
+.Fc
+.Ft void
+.Fo BF_cfb64_encrypt
+.Fa "const unsigned char *in"
+.Fa "unsigned char *out"
+.Fa "long length"
+.Fa "BF_KEY *schedule"
+.Fa "unsigned char *ivec"
+.Fa "int *num"
+.Fa "int enc"
+.Fc
+.Ft void
+.Fo BF_ofb64_encrypt
+.Fa "const unsigned char *in"
+.Fa "unsigned char *out"
+.Fa "long length"
+.Fa "BF_KEY *schedule"
+.Fa "unsigned char *ivec"
+.Fa "int *num"
+.Fc
+.Ft const char *
+.Fo BF_options
+.Fa void
+.Fc
+.Ft void
+.Fo BF_encrypt
+.Fa "BF_LONG *data"
+.Fa "const BF_KEY *key"
+.Fc
+.Ft void
+.Fo BF_decrypt
+.Fa "BF_LONG *data"
+.Fa "const BF_KEY *key"
+.Fc
+.Sh DESCRIPTION
+This library implements the Blowfish cipher,
+which was invented and described by
+.An Counterpane .
+.Pp
+Blowfish is a block cipher that operates on 64 bit (8 byte) blocks of data.
+It uses a variable size key, but typically, 128 bit (16 byte) keys
+are considered good for strong encryption.
+Blowfish can be used in the same modes as DES (see
+.Xr des_modes 3 ) .
+Blowfish is currently one of the faster block ciphers.
+It is quite a bit faster than DES, and much faster than IDEA or RC2.
+.Pp
+Blowfish consists of a key setup phase
+and the actual encryption or decryption phase.
+.Pp
+.Fn BF_set_key
+sets up the
+.Vt BF_KEY
+.Fa key
+using the
+.Fa len
+bytes long key at
+.Fa data .
+.Pp
+.Fn BF_ecb_encrypt
+is the basic Blowfish encryption and decryption function.
+It encrypts or decrypts the first 64 bits of
+.Fa in
+using the key
+.Fa key ,
+putting the result in
+.Fa out .
+.Fa enc
+decides if encryption
+.Pq Dv BF_ENCRYPT
+or decryption
+.Pq Dv BF_DECRYPT
+shall be performed.
+The vector pointed at by
+.Fa in
+and
+.Fa out
+must be 64 bits in length, no less.
+If they are larger, everything after the first 64 bits is ignored.
+.Pp
+The mode functions
+.Fn BF_cbc_encrypt ,
+.Fn BF_cfb64_encrypt ,
+and
+.Fn BF_ofb64_encrypt
+all operate on variable length data.
+They all take an initialization vector
+.Fa ivec
+which needs to be passed along into the next call of the same function
+for the same message.
+.Fa ivec
+may be initialized with anything, but the recipient needs to know what
+it was initialized with, or it won't be able to decrypt.
+Some programs and protocols simplify this, like SSH, where
+.Fa ivec
+is simply initialized to zero.
+.Fn BF_cbc_encrypt
+operates on data that is a multiple of 8 bytes long, while
+.Fn BF_cfb64_encrypt
+and
+.Fn BF_ofb64_encrypt
+are used to encrypt an variable number of bytes (the amount
+does not have to be an exact multiple of 8).
+The purpose of the latter two is to simulate stream ciphers,
+and therefore, they need the parameter
+.Fa num ,
+which is a pointer to an integer where the current offset in
+.Fa ivec
+is stored between calls.
+This integer must be initialized to zero when
+.Fa ivec
+is initialized.
+.Pp
+.Fn BF_cbc_encrypt
+is the Cipher Block Chaining function for Blowfish.
+It encrypts or decrypts the 64 bits chunks of
+.Fa in
+using the key
+.Fa schedule ,
+putting the result in
+.Fa out .
+.Fa enc
+decides if encryption
+.Pq Dv BF_ENCRYPT
+or decryption
+.Pq Dv BF_DECRYPT
+shall be performed.
+.Fa ivec
+must point at an 8 byte long initialization vector.
+.Pp
+.Fn BF_cfb64_encrypt
+is the CFB mode for Blowfish with 64 bit feedback.
+It encrypts or decrypts the bytes in
+.Fa in
+using the key
+.Fa schedule ,
+putting the result in
+.Fa out .
+.Fa enc
+decides if encryption
+.Pq Dv BF_ENCRYPT
+or decryption
+.Pq Dv BF_DECRYPT
+shall be performed.
+.Fa ivec
+must point at an
+8 byte long initialization vector.
+.Fa num
+must point at an integer which must be initially zero.
+.Pp
+.Fn BF_ofb64_encrypt
+is the OFB mode for Blowfish with 64 bit feedback.
+It uses the same parameters as
+.Fn BF_cfb64_encrypt ,
+which must be initialized the same way.
+.Pp
+.Fn BF_encrypt
+and
+.Fn BF_decrypt
+are the lowest level functions for Blowfish encryption.
+They encrypt/decrypt the first 64 bits of the vector pointed by
+.Fa data ,
+using the key
+.Fa key .
+These functions should not be used unless you implement 'modes' of Blowfish.
+The alternative is to use
+.Fn BF_ecb_encrypt .
+If you still want to use these functions, you should be aware
+that they take each 32-bit chunk in host-byte order,
+which is little-endian on little-endian platforms
+and big-endian on big-endian ones.
+.Sh RETURN VALUES
+None of the functions presented here return any value.
+.Sh NOTE
+Applications should use the higher level functions
+.Xr EVP_EncryptInit 3
+etc. instead of calling the blowfish functions directly.
+.Sh HISTORY
+The Blowfish functions are available in all versions of SSLeay and OpenSSL.

diff --git a/src/lib/libcrypto/man/BF_set_key.3 b/src/lib/libcrypto/man/BF_set_key.3 new file mode 100644 index 0000000000..53ff53896c --- /dev/null +++ b/src/lib/libcrypto/man/BF_set_key.3
@@ -0,0 +1,215 @@
	1	.Dd July 17, 2014
	2	.Dt BF_SET_KEY 3
	3	.Os
	4	.Sh NAME
	5	.Nm BF_set_key ,
	6	.Nm BF_encrypt ,
	7	.Nm BF_decrypt ,
	8	.Nm BF_ecb_encrypt ,
	9	.Nm BF_cbc_encrypt ,
	10	.Nm BF_cfb64_encrypt ,
	11	.Nm BF_ofb64_encrypt ,
	12	.Nm BF_options
	13	.Nd Blowfish encryption
	14	.Sh SYNOPSIS
	15	.In openssl/blowfish.h
	16	.Ft void
	17	.Fo BF_set_key
	18	.Fa "BF_KEY *key"
	19	.Fa "int len"
	20	.Fa "const unsigned char *data"
	21	.Fc
	22	.Ft void
	23	.Fo BF_ecb_encrypt
	24	.Fa "const unsigned char *in"
	25	.Fa "unsigned char *out"
	26	.Fa "BF_KEY *key"
	27	.Fa "int enc"
	28	.Fc
	29	.Ft void
	30	.Fo BF_cbc_encrypt
	31	.Fa "const unsigned char *in"
	32	.Fa "unsigned char *out"
	33	.Fa "long length"
	34	.Fa "BF_KEY *schedule"
	35	.Fa "unsigned char *ivec"
	36	.Fa "int enc"
	37	.Fc
	38	.Ft void
	39	.Fo BF_cfb64_encrypt
	40	.Fa "const unsigned char *in"
	41	.Fa "unsigned char *out"
	42	.Fa "long length"
	43	.Fa "BF_KEY *schedule"
	44	.Fa "unsigned char *ivec"
	45	.Fa "int *num"
	46	.Fa "int enc"
	47	.Fc
	48	.Ft void
	49	.Fo BF_ofb64_encrypt
	50	.Fa "const unsigned char *in"
	51	.Fa "unsigned char *out"
	52	.Fa "long length"
	53	.Fa "BF_KEY *schedule"
	54	.Fa "unsigned char *ivec"
	55	.Fa "int *num"
	56	.Fc
	57	.Ft const char *
	58	.Fo BF_options
	59	.Fa void
	60	.Fc
	61	.Ft void
	62	.Fo BF_encrypt
	63	.Fa "BF_LONG *data"
	64	.Fa "const BF_KEY *key"
	65	.Fc
	66	.Ft void
	67	.Fo BF_decrypt
	68	.Fa "BF_LONG *data"
	69	.Fa "const BF_KEY *key"
	70	.Fc
	71	.Sh DESCRIPTION
	72	This library implements the Blowfish cipher,
	73	which was invented and described by
	74	.An Counterpane .
	75	.Pp
	76	Blowfish is a block cipher that operates on 64 bit (8 byte) blocks of data.
	77	It uses a variable size key, but typically, 128 bit (16 byte) keys
	78	are considered good for strong encryption.
	79	Blowfish can be used in the same modes as DES (see
	80	.Xr des_modes 3 ) .
	81	Blowfish is currently one of the faster block ciphers.
	82	It is quite a bit faster than DES, and much faster than IDEA or RC2.
	83	.Pp
	84	Blowfish consists of a key setup phase
	85	and the actual encryption or decryption phase.
	86	.Pp
	87	.Fn BF_set_key
	88	sets up the
	89	.Vt BF_KEY
	90	.Fa key
	91	using the
	92	.Fa len
	93	bytes long key at
	94	.Fa data .
	95	.Pp
	96	.Fn BF_ecb_encrypt
	97	is the basic Blowfish encryption and decryption function.
	98	It encrypts or decrypts the first 64 bits of
	99	.Fa in
	100	using the key
	101	.Fa key ,
	102	putting the result in
	103	.Fa out .
	104	.Fa enc
	105	decides if encryption
	106	.Pq Dv BF_ENCRYPT
	107	or decryption
	108	.Pq Dv BF_DECRYPT
	109	shall be performed.
	110	The vector pointed at by
	111	.Fa in
	112	and
	113	.Fa out
	114	must be 64 bits in length, no less.
	115	If they are larger, everything after the first 64 bits is ignored.
	116	.Pp
	117	The mode functions
	118	.Fn BF_cbc_encrypt ,
	119	.Fn BF_cfb64_encrypt ,
	120	and
	121	.Fn BF_ofb64_encrypt
	122	all operate on variable length data.
	123	They all take an initialization vector
	124	.Fa ivec
	125	which needs to be passed along into the next call of the same function
	126	for the same message.
	127	.Fa ivec
	128	may be initialized with anything, but the recipient needs to know what
	129	it was initialized with, or it won't be able to decrypt.
	130	Some programs and protocols simplify this, like SSH, where
	131	.Fa ivec
	132	is simply initialized to zero.
	133	.Fn BF_cbc_encrypt
	134	operates on data that is a multiple of 8 bytes long, while
	135	.Fn BF_cfb64_encrypt
	136	and
	137	.Fn BF_ofb64_encrypt
	138	are used to encrypt an variable number of bytes (the amount
	139	does not have to be an exact multiple of 8).
	140	The purpose of the latter two is to simulate stream ciphers,
	141	and therefore, they need the parameter
	142	.Fa num ,
	143	which is a pointer to an integer where the current offset in
	144	.Fa ivec
	145	is stored between calls.
	146	This integer must be initialized to zero when
	147	.Fa ivec
	148	is initialized.
	149	.Pp
	150	.Fn BF_cbc_encrypt
	151	is the Cipher Block Chaining function for Blowfish.
	152	It encrypts or decrypts the 64 bits chunks of
	153	.Fa in
	154	using the key
	155	.Fa schedule ,
	156	putting the result in
	157	.Fa out .
	158	.Fa enc
	159	decides if encryption
	160	.Pq Dv BF_ENCRYPT
	161	or decryption
	162	.Pq Dv BF_DECRYPT
	163	shall be performed.
	164	.Fa ivec
	165	must point at an 8 byte long initialization vector.
	166	.Pp
	167	.Fn BF_cfb64_encrypt
	168	is the CFB mode for Blowfish with 64 bit feedback.
	169	It encrypts or decrypts the bytes in
	170	.Fa in
	171	using the key
	172	.Fa schedule ,
	173	putting the result in
	174	.Fa out .
	175	.Fa enc
	176	decides if encryption
	177	.Pq Dv BF_ENCRYPT
	178	or decryption
	179	.Pq Dv BF_DECRYPT
	180	shall be performed.
	181	.Fa ivec
	182	must point at an
	183	8 byte long initialization vector.
	184	.Fa num
	185	must point at an integer which must be initially zero.
	186	.Pp
	187	.Fn BF_ofb64_encrypt
	188	is the OFB mode for Blowfish with 64 bit feedback.
	189	It uses the same parameters as
	190	.Fn BF_cfb64_encrypt ,
	191	which must be initialized the same way.
	192	.Pp
	193	.Fn BF_encrypt
	194	and
	195	.Fn BF_decrypt
	196	are the lowest level functions for Blowfish encryption.
	197	They encrypt/decrypt the first 64 bits of the vector pointed by
	198	.Fa data ,
	199	using the key
	200	.Fa key .
	201	These functions should not be used unless you implement 'modes' of Blowfish.
	202	The alternative is to use
	203	.Fn BF_ecb_encrypt .
	204	If you still want to use these functions, you should be aware
	205	that they take each 32-bit chunk in host-byte order,
	206	which is little-endian on little-endian platforms
	207	and big-endian on big-endian ones.
	208	.Sh RETURN VALUES
	209	None of the functions presented here return any value.
	210	.Sh NOTE
	211	Applications should use the higher level functions
	212	.Xr EVP_EncryptInit 3
	213	etc. instead of calling the blowfish functions directly.
	214	.Sh HISTORY
	215	The Blowfish functions are available in all versions of SSLeay and OpenSSL.